KED Global News Network (hereinafter referred to as the “Company”) values the privacy of its users and strictly complies with all applicable privacy-related laws and regulations, including the Personal Information Protection Act and the Act on Promotion of Information and Communications Network Utilization and Information Protection.
Through this Privacy Policy, the Company provides transparent information regarding the types of personal information it collects, the purposes for which such information is used, the retention and usage periods, and matters related to the provision and outsourcing of personal information to third parties.
This Privacy Policy may be revised in accordance with changes to government laws, regulations, or guidelines, or due to amendments to the Company’s terms and internal policies. In the event of such revisions, the Company will promptly notify users via its website (or through individual notices).
The contents of this Privacy Policy are organized as follows:
1. Purpose of Collection and Use of Personal Information
1. Membership Registration and Management
2. Development of New Services and Marketing
2. Categories and Methods of Personal Information Collection
1. Categories of Personal Information Collected
2. Methods of Personal Information Collection
3. Retention and Processing Period of Personal Information
1. Retention Upon Membership Withdrawal
2. Retention in Accordance with Applicable Laws
4. Procedures and Methods for Destroying Personal Information
5. Sharing and Disclosure of Personal Information
1. Exceptions to Third-Party Disclosure
6. Outsourcing of Personal Information Processing
1. Mandatory Notice on Outsourcing
2. Overseas Transfer of Personal Information
7. Rights of Data Subjects and How to Exercise Them
8. Installation, Operation, and Refusal of Automatic Data Collection Devices
9. Technical, Administrative, and Physical Measures for the Protection of Personal Information
4. Management of User ID and Password
11. Pseudonymized Data Processing
1. Purpose of Collection and Use of Personal Information
The Company collects and uses personal information for the following purposes. Collected personal data will not be used for purposes other than those specified below, and if the purpose of use is changed, the Company will take necessary measures such as obtaining separate consent in accordance with Article 18 of the Personal Information Protection Act.
1. Membership Registration and Management
Provision of membership-based services, Identity verification, Restriction of service use for Members who violate the Terms of Use, Prevention of misuse or acts that interfere with the proper operation of the service, Verification of intent to join, Age verification, Confirmation of legal guardian consent when collecting personal information from children under the age of 14, Identity verification of legal guardians
Handling of personal information-related requests such as access, correction, deletion, or suspension of processing, Dispute resolution and recordkeeping, Handling of user complaints and inquiries, Delivery of important notices, Processing of membership withdrawal
2. Development of New Services and Marketing
Development of new services and provision of personalized services based on individual preferences, Display of advertisements and service offerings based on statistical characteristics, Provision of promotional information and event announcements (In such cases, only aggregated interest-type information is used, and no specific individual information is shared)
3. Newsletter Services
The email newsletter service is only sent based on the user’s subscription preferences and can be unsubscribed from at any time.
Due to the nature of email communication, there may be delays of 1–2 days depending on network conditions or the recipient’s email service provider.
4. Others
- ment of service-related contracts, Billing and payment processing for paid services, Provision of content, Delivery of purchased items, invoices, or other physical materials
2. Categories and Methods of Personal Information Collection
1. Categories of Personal Information Collected
The Company collects the following categories of personal information. The Company does not collect sensitive information (such as race or ethnicity, beliefs, political opinions, criminal records, health status, or sexual orientation) or resident registration numbers unless required by law or with proper legal basis, in order to protect the fundamental rights of individuals. Additionally, certain types of information may be automatically generated and collected during service use or in the course of processing.
Category | Items Collected | Purpose of Collection and Use | Retention and Use Period |
|---|---|---|---|
Membership Registration | Email Member [Required] Email address | Identification for registration, statistics, account linking, customer inquiry response | Until membership withdrawal |
Social Member Google: [Required] Email address Apple: [Required] Email address | Same as above | Until membership withdrawal | |
KED Global Member [Required] Email address, password, last name, first name, nationality [Optional] Country of residence, company name, job title, interests, newsletter subscription, event and promotional information consent | [Required] Identification, statistics, account linking, customer support [Optional] Personalized product recommendations, marketing, and promotional information | Until membership withdrawal | |
Member Information | [Optional] Business type, Asset type, department | Identification, statistics, account linking, customer support | Until membership withdrawal |
Hidden Champion / Future Unicorn | Business email, sector, download purpose | Identification, statistics, account linking, customer support | Until purpose is fulfilled |
Paid Services | At time of payment [Required] Purchaser’s name, email, country, billing address, and payment details (product code, product name, amount paid, card/account info). Note: Only encrypted keys are stored, and personal payment data is managed by the respective payment gateway (PG) company. [Optional] Applicant information (name, email) At time of refund [Required] Bank name, account number, account holder’s name | Payment processing and product-related notifications, Refund issuance | |
Information Generated During Service Use or Business Processing | IP address, cookies, visit logs, usage history (including abuse records), device information, and payment history | Identification, statistics, account linking, customer support, prevention of abuse and unauthorized use, marketing and advertising | |
Events, Promotions, Surveys | Applicant information (name, email, mobile phone number, address, gender, age group, occupation, etc.) | For participation in events/promotions, prize delivery, and related notifications |
2. Methods of Personal Information Collection
The Company collects personal information through the following methods:
When a user agrees to the Privacy Policy and directly enters personal information during the sign-up process or while using services
When a user consents to the collection of personal information while participating in events, promotions, or giveaways
When personal information is provided by external partner companies or organizations affiliated with the Company (only after such partners obtain user consent for information sharing, in compliance with the Act on Promotion of Information and Communications Network Utilization and Information Protection)
Device information and other usage data (such as cookies and access logs) are automatically collected through the use of the Company’s desktop website, mobile site, or mobile applications
3. Retention and Processing Period of Personal Information
The Company promptly destroys personal information once the purpose of collection and use has been fulfilled, the user withdraws consent, or the retention period has expired. However, certain information may be retained for a specified period based on the following reasons:
1. Retention Upon Membership Withdrawal
Retained Information: Name, user ID, email address, company name, job title, etc. provided by the user
To prevent re-registration by users with a history of misconduct
To assist in resolving defamation, rights infringement disputes, or legal investigations
Retention Period: 3 months
2. Retention in Accordance with Applicable Laws
Records of website usage, access logs, and IP addresses: (Protection of Communications Secrets Act)
Records related to display/advertisement: 6 months (Act on The Consumer Protection in Electronic Commerce)
Records related to contracts or withdrawal of offers: 5 years (Act on The Consumer Protection in Electronic Commerce)
Records related to payment and supply of goods: 5 years (Act on The Consumer Protection in Electronic Commerce)
Records related to consumer complaints or dispute resolution: 3 years (Act on The Consumer Protection in Electronic Commerce)
Records related to location information: 1 year (Act On The Protection And Use Of Location Information)
4. Procedures and Methods for Destroying Personal Information
In principle, the Company promptly destroys personal information when the purpose of its collection and use has been fulfilled or the retention period has expired.
1. Deletion Procedure
Personal information provided by users for purposes such as membership registration is transferred to a separate database (or a separate physical storage box in the case of paper documents) once the collection purpose is fulfilled. It is then retained for a certain period in accordance with internal policies and applicable laws (see Retention Period) before being permanently deleted.
Personal information is not used for any other purpose unless required by law.
2. Deletion Methods
- For electronic files stored in databases: Permanently deleted using irrecoverable technical methods
- For printed or written documents: Destroyed by shredding or incineration
5. Sharing and Disclosure of Personal Information
The Company uses personal information within the scope notified in “1. Purpose of Collection and Use of Personal Information,” and does not use or disclose such information to third parties without the user’s prior consent.
However, exceptions apply in the following cases:
1. Exceptions to Third-Party Disclosure
When the user has given prior consent for disclosure
When required by law or in response to a request from an investigative agency made through legal procedures
When it is clearly necessary for the life, physical safety, or property interests of the user or a third party, and prior consent cannot be obtained due to the user’s inability to express intent (e.g., unconsciousness) or unavailability (e.g., unknown address)
When the information is provided in a form that does not identify a specific individual, for purposes such as statistical analysis or academic research
When disclosure is otherwise permitted under Articles 17 and 18 of the Personal Information Protection Act
6. Outsourcing of Personal Information Processing
1. Mandatory Notice on Outsourcing
To enhance the quality of its Services, the Company outsources certain personal information processing tasks to trusted third-party service providers. In accordance with applicable laws, the Company includes appropriate safeguards in its outsourcing agreements to ensure that personal information is managed securely.
The details of the Company’s outsourcing arrangements are as follows:
Vendor | Purpose | Retention |
|---|---|---|
Paymentwall | Payment processing | Until membership withdrawal or termination of contract |
Freshworks | Collection and analysis of marketing data, management of customer information system, handling of customer inquiries | Until membership withdrawal or termination of contract |
OneSignal | Notification delivery and system management | Until subscription cancellation or termination of contract |
Stibee | Delivery of newsletters and promotional newsletters; service usage statistics and analysis | Until subscription cancellation or termination of contract |
Google (AdSense, Ad Manager, DoubleClick, Analytics, MobileAds, YouTube, Firebase, etc.) | Analytics services related to marketing events | Until termination of contract |
Apple | Analytics services related to marketing events | Until termination of contract |
Microsoft | Analytics services related to marketing events | Until termination of contract |
Google Forms, Airtable | Conducting online surveys | Until termination of contract |
Naver Cloud | Service hosting | Until termination of contract |
- If there are any changes to the service providers listed above, the Company will notify users via an update to this Privacy Policy or through a separate notice.
2. Overseas Transfer of Personal Information
The Company uses the customer support system provided by Freshworks Inc. to support customer service operations. As a result, certain personal information may be transferred overseas as follows:
Recipient of the information: Freshworks Inc. (Freshworks: Uncomplicated Software | IT Service, Customer Service )
Contact information: support@freshworks.com
Destination country: United States
Personal information transferred: Items specified in “2. Categories and Methods of Personal Information Collection”
Purpose of use: Collection and analysis of marketing activity data, customer information system management, and handling of customer inquiries
Time and method of transfer: Transferred remotely via network upon completion of membership registration or when a customer inquiry is submitted
Retention and use period: As specified in “2. Categories and Methods of Personal Information Collection”
The Company also utilizes the automated push notification service provided by OneSignal to support the delivery of service-related notifications. Accordingly, personal information may be transferred overseas as follows:
Recipient of the information: OneSignal (Customer Engagement Platform for Email, Push Notifications, & SMS )
Contact information: support@onesignal.com
Destination country: United States
Personal information transferred: Items specified in “2. Categories and Methods of Personal Information Collection”
Purpose of use: Provision of analytics services related to marketing events and delivery of push notifications
Time and method of transfer: Transferred remotely via network upon completion of membership registration or as needed in the course of business
Retention and use period: As specified in “2. Categories and Methods of Personal Information Collection”
7. Rights of Data Subjects and How to Exercise Them
Users and their legal guardians may, at any time, access or modify the personal information of themselves or their children under the age of 14. If the user does not agree to the Company’s processing of personal information, they may withdraw consent or request cancellation of their membership. Please note, however, that in such cases, the user may not be able to use all or part of the Services.
To view or modify personal information of a user or a child under the age of 14, the user can log in and go through the identity verification process by clicking on “Edit Personal Information” (or “Edit Member Info,” etc.). To withdraw consent or cancel membership, the user may click “Delete Account” (Withdraw Membership) and follow the required identity verification procedure.
Alternatively, users may contact the Company’s Privacy Officer by mail, phone, or email, and the Company will promptly take action upon confirming the identity of the requester.
If a user requests correction of an error in their personal information, the Company will not use or provide the relevant information until the correction is complete. If incorrect personal information has already been provided to a third party, the Company will notify the third party of the correction without delay.
Personal information that has been deleted or deactivated at the request of the user or legal guardian is handled in accordance with the retention and deletion policy set forth in “3. Retention and Processing Period of Personal Information”, and such information is not accessed or used for any other purpose.
8. Installation, Operation, and Refusal of Automatic Data Collection Devices
- The Company uses cookies to store and retrieve user information in order to provide personalized and customized services.
- A cookie is a small text file sent by the server to the browser used by the Member when accessing the website. Cookies are stored on the user’s device (PC, smartphone, tablet, etc.). When the user revisits the website, the server reads the cookie stored on the device’s hard drive to maintain user preferences and provide customized services.
- The Company uses cookies to analyze visits and usage frequency across different Company services, determine user behavior, and identify participation in events. This information is used for personalized marketing and service customization.
- Users have the right to reject or delete cookies at any time. Users can configure their web browser settings to allow all cookies, to require confirmation each time a cookie is stored, or to block all cookies altogether. However, if cookies are blocked, some services that require login may become unavailable.
- For example, in the Chrome browser, the method to configure cookie settings is as follows:
- For example, in the Chrome browser, the method to configure cookie settings is as follows:
Click [More] in the top right of the web browser and select [Settings]
Click [Privacy and Security]
Adjust cookie preferences under [Third-party cookies]
- Please note that the exact method of configuration may differ depending on the browser.
9. Technical, Administrative, and Physical Measures for the Protection of Personal Information
1. Technical Measures
- Personal information is protected by passwords. Sensitive data is secured through encryption or locked files to prevent unauthorized access.
- The Company uses antivirus software to protect systems from malware and computer viruses. This software is regularly updated and immediately applied in case of new virus outbreaks to minimize the risk of personal data breaches.
- To ensure safe transmission of personal information over the network, the Company uses Secure Socket Layer (SSL) encryption.
2. Administrative Measures
- The Company strictly limits access to personal information to employees who are in charge of personal information management or whose duties require the processing of such information. It provides periodic training to these employees to ensure compliance with this policy. Furthermore, the Company conducts regular internal security audits to verify adherence to the policy, and takes corrective actions immediately when violations or deficiencies are discovered.
3. Physical Measures
- The Company controls access to personal information by granting, modifying, or revoking access permissions to the databases that process personal data. It also uses intrusion prevention systems to block unauthorized access from outside sources.
- Documents, portable storage media, or other materials containing personal information are stored in secure, locked locations.
- The Company also designates separate physical storage facilities for personal information and operates controlled access procedures for entry into these areas.
4. Management of User ID and Password
- In addition to the Company’s security efforts, users are responsible for ensuring that their personal IDs and passwords are not exposed to third parties. In particular, users should exercise caution to prevent their credentials from being leaked when using public computers. IDs and passwords should be used only by the account holder, and it is strongly recommended to change passwords regularly.
10. Personal Information Protection Officer, Service-specific Data Managers, and Access Request Guidance
To ensure the proper handling of the personal information collected from its members, the Company designates the following Personal Information Protection Officer, service-specific data managers, and a contact point for access requests. The Company provides prompt and sincere responses to all inquiries related to personal information.
- Name: Byoungyeon Yoo
- Telephone: +82-2-360-4316
- Email: yooby@hankyung.com
If you require further assistance regarding access to personal information, or if you wish to file a report or seek consultation, please contact one of the following agencies:
- Personal Information Protection Portal
Phone: 118 (toll-free)
Website: 개인정보 포털
- Personal Information Infringement Report Center(operated by the KISA
- Phone: 118 (toll-free)
- Website: KISA 개인정보침해 신고센터
Personal Information Dispute Mediation Committee
Phone: 1833-6972 (toll-free)
Website: 개인정보분쟁조정위원회
Address: 12th Floor, Government Complex Seoul, 209 Sejong-daero, Jongno-gu, Seoul 03171, Republic of Korea
Supreme Prosecutors’ Office, Cyber Crime Investigation Division
Phone: 1301 (toll-free)
Website: 대검찰청
Cyber Bureau of the Korean National Police Agency
Phone: 182 (toll-free)
Website: 사이버범죄 신고시스템 (ECRM)
11. Pseudonymized Data Processing
- In accordance with Article 28-2 of the Personal Information Protection Act, the Company may pseudonymize personal information and use it without the data subject’s consent for the purpose of statistical analysis, scientific research, or public interest record preservation.
- When pseudonymizing personal information, the Company stores and manages any additional information that may enable re-identification separately. Technical, administrative, and physical safeguards are applied to ensure that such information is not lost, stolen, leaked, altered, or damaged.
- If, during the processing of pseudonymized data, any information is created that may directly or indirectly identify an individual, the Company will immediately cease processing and promptly retrieve and destroy such information.
- When providing pseudonymized information to a third party, the Company shall notify the recipient that the data is pseudonymized, state the purpose of use, and inform them of the obligation to prevent re-identification. The Company will also comply with all relevant laws and regulations.
- The processing purpose, retention period, and destruction of pseudonymized data shall follow the relevant provisions of this Privacy Policy. However, separate standards may apply in consideration of the nature of pseudonymized data.
12. Duty of Notification
- Details regarding this Privacy Policy and other matters related to personal information are disclosed at the bottom of the Company’s main website, allowing users to review them at any time.
- Please note that the contents of this Privacy Policy are subject to change. Users are encouraged to review the policy regularly when visiting the website.
- If any additions, deletions, or modifications are made to this Privacy Policy due to changes in applicable laws, internal policies, or security technologies, the Company will notify users of the reason and details of the revision on the service interface at least 7 days prior to the effective date.
- This Privacy Policy is applied as follows:
- Last Revised: May 30, 2025
- Effective Date: June 30, 2025
These Terms are originally written in Korean and governed by the laws of the Republic of Korea. The English version is provided for reference purposes only. In case of discrepancies between the Korean and English versions, the Korean version shall prevail.Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article